2 matches found
CVE-2008-0676
Cross-site scripting XSS vulnerability in search.php in A-Blog 2 allows remote attackers to inject arbitrary web script or HTML via the words parameter...
CVE-2008-0676
CVE-2008-0676 describes a Cross-site Scripting (XSS) vulnerability in the search.php component of A-Blog 2. The flaw allows remote attackers to inject arbitrary web script or HTML via the words parameter, enabling potential credential theft or session manipulation through crafted search queries. ...